Opened 16 years ago
Closed 15 years ago
#509 closed defect (bug) (no action required)
Security improvement in group forums
Reported by: | burtadsit | Owned by: | burtadsit |
---|---|---|---|
Milestone: | 1.1 | Priority: | minor |
Severity: | Version: | ||
Component: | Keywords: | ||
Cc: |
Description
The password used to access bbpress forums using bbpress_live is just in wp_1_options meta data in plain text. We have a user created in wp/bbpress that has a stored password. Encrypted. The user authentication on the bbpress side uses that username/password and validates access with the user account.
bp should do the same. I know this is sambauers code but this is a definite hole we need to plug.
Change History (6)
Note: See
TracTickets for help on using
tickets.
Forgot. Also we should have the password entry/change be the usual enter twice for validation in the backend admin form.